CyberSecurityBoardThreat Intel · CVEs · Products
Critical CVEs

CVE-2025-11371: Gladinet Triofox Critical Vulnerability

July 2, 2026

A critical flaw (CVSS 9.1) in Gladinet Triofox exploited by Storm-2603 for initial access in ransomware attacks. Used to probe for local file inclusion via requests for files like win.ini and web.config.